Lucene search

GitHub Advisory DatabaseGHSA-82H9-V8VH-MFPQ

HistoryNov 25, 2022 - 6:30 p.m.

Browsershot vulnerable to Cross-Site Scripting (XSS)

2022-11-2518:30:25

CWE-79

GitHub Advisory Database

github.com

browsershot

cross-site scripting

version 3.57.2

html content

file:// protocol

software

8.2 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:N

0.002 Low

EPSS

Percentile

55.7%

JSON

Browsershot version 3.57.2 allows an external attacker to remotely obtain arbitrary local files. This is possible because the application does not validate that the HTML content passed to the Browsershot::html method does not contain URL’s that use the file:// protocol.

Affected configurations

Vulners

Node

spatiebrowsershotRange<3.57.3

CPENameOperatorVersion
spatie/browsershotlt3.57.3

CPE	Name	Operator	Version
	spatie/browsershot	lt	3.57.3

References

fluidattacks.com/advisories/khalid/

github.com/advisories/GHSA-82h9-v8vh-mfpq

github.com/spatie/browsershot/commit/92cf16fc098211731f80d21687abeafbe2c457ad

nvd.nist.gov/vuln/detail/CVE-2022-43983

8.2 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:N

0.002 Low

EPSS

Percentile

55.7%

JSON

Related for GHSA-82H9-V8VH-MFPQ